Monthly Round Up for the month of May 2024

Nissan data breach exposed Social Security numbers of thousands of employees

Nissan suffered a data breach last November in a ransomware attack that exposed the Social Security numbers of thousands of former and current employees, the Japanese automaker said 15th May. 

Nissan’s U.S.-based subsidiary, Nissan North America, detailed the cyberattack in a May 15 letter to affected individuals. In the letter, Nissan North America said a bad actor attacked a company virtual private network and demanded payment. Nissan did not indicate whether it paid the ransom.

MediSecure e-script firm hit by ‘large-scale’ ransomware data breach

Electronic prescription provider MediSecure in Australia has shut down its website and phone lines following a ransomware attack believed to originate from a third-party vendor. The incident has impacted personal and health information of individuals but the extent remains unclear at this time.

Operating since 2009, MediSecure provides digital tools to healthcare professionals to manage and dispense medications to patients.

Helsinki suffers data breach after hackers exploit unpatched flaw

The City of Helsinki is investigating a data breach in its education division, which it discovered in late April 2024, impacting tens of thousands of students, guardians, and personnel.

Though information about the attack was circulated on May 2, 2024, the city’s authorities shared more details in a press conference earlier today.

According to the details disclosed today, an unauthorized actor gained access to a network drive after exploiting a vulnerability in a remote access server.

While the officials did not state what remote access product was targeted, they shared that a security patch for the vulnerability was available at the time of the attack but had not been installed.

The accessed drive contained tens of millions of files, most devoid of personally identifiable information (PII). Still, some included usernames, email addresses, personal IDs, and physical addresses.

Additionally, the exposed drive contained information about fees, childhood education and care, children’s status, welfare requests, medical certificates, and other highly sensitive information.

This is a very serious data breach, with possible, unfortunate consequences for our customers and personnel. We regret this situation deeply, commented city manager Jukka-Pekka Ujula.

Dropbox Sign Hacked: Attackers Stolen API Keys, MFA, & Hashed Passwords

Dropbox disclosed a significant security breach affecting its electronic signature service, Dropbox Sign (formerly known as HelloSign).

The incident, which came to light on April 24, involved unauthorized access to the Dropbox Sign production environment, exposing sensitive customer information.

Dropbox’s security team was alerted to the breach on April 24 after detecting unauthorized access to the Dropbox Sign production environment.

A thorough investigation revealed that a threat actor had infiltrated the system and gained access to a wealth of customer data.